Security

Security Roundup
Your Period Tracker Is (Probably) Spying on You
Plus: Russian cyberspies turn to infrastructure hacking, DHS repeatedly fails to realize it’d been hacked, a breach exposes an AI music generator’s scraping ways, and more.
Andy Greenberg, Dell Cameron, and Lily Hay Newman


Stripped Out
San Francisco Demands Apple and Google Delete AI ‘Nudify’ Apps From App Stores
Matt Burgess

AI Found a Root Bug in Linux That Everyone Missed for 15 Years
Plus: The Pentagon is training amateurs to become part of its hacker army, a Flock license plate reader error led to cops surrounding a car reviewer, and more.
Dell Cameron and Lily Hay Newman

Madison Square Garden Kept a List of Gay Celebrities
An MSG database tracked and categorized hundreds of celebs, famous Knicks superfans, and even some of Taylor Swift’s wedding guests. Labels included “LGBTQIA,” “DO NOT HOST,” and low to high “risk.”
Noah Shachtman and Maddy Varner

OnlyFans Models Are Accidentally Making Hacked Government Websites Disappear
Scammers are hijacking government websites to upload ads for “leaked” OnlyFans content. Thousands of copyright complaints from adult creators are helping people avoid malicious links.
Matt Burgess

What Happens if China Hacks the US Water Supply? I Went to a Secret War Game to Find Out
Burst water mains. Evacuated hospitals. In a closed-door simulation, insurers played out their response to a mass disruption by China’s Volt Typhoon hackers—and found a nightmare scenario.
Andy Greenberg

Here’s the Truth About Whether Meta’s NameTag Face Recognition Tech ‘Exists’
Since WIRED reported on Meta’s NameTag face recognition system, company executives have made confusing and conflicting remarks about its very existence.
Andrew Couts
A Leak of San Francisco Police Drone Footage Exposes the New Reality of Urban Surveillance
The SFPD’s exposure of hours of videos from drone platform Skydio reveals how broadly it’s watching the city from above—and how the results can spill online.
Andy Greenberg and Dhruv Mehrotra

A Majority of European Lawmakers Voted Against Letting Big Tech Read Our Messages. They’re Going to Anyway
Companies will once again be allowed to scan citizens’ personal texts, emails, and social media messages via the “Chat Control” bill to find child abuse material online.
Isabella Ward

Apple’s Hide My Email Service Fails to Hide Your Email
Plus: Alleged Scattered Spider hacking member extradited, dozens of license plate reader errors, and Indian officials are concerned about WhatsApp’s username rollout.
Matt Burgess and Lily Hay Newman

You Can Disable Gemini in Chrome if It’s Freaking You Out
Chrome users were caught off guard by a 4-GB Google AI model baked into Chrome, sparking privacy concerns. The good news: You can easily uninstall it. The bad? You might not want to.
Lily Hay Newman
How the Internet Broke Everyone’s Bullshit Detectors
From AI-generated images to restricted satellite data, the systems used to verify what’s real online are struggling to keep up.
Gia Chaudry

How to Organize Safely in the Age of Surveillance
From threat modeling to encrypted collaboration apps, we’ve collected experts’ tips and tools for safely and effectively building a group—even while being targeted and tracked by the powerful.
Andy Greenberg and Lily Hay Newman

How to Protest Safely in the Age of Surveillance
Law enforcement has more tools than ever to track your movements and access your communications. Here’s how to protect your privacy if you plan to protest.
Andy Greenberg and Lily Hay Newman

Meta Contractors Posed as Teens to Prompt Rival Chatbots About Suicide, Sex, and Drugs
Hundreds of contractors working on a project for Meta pretended to be kids in order to see how other chatbots like Gemini and ChatGPT would respond to high-risk subjects, WIRED found.
Dhruv Mehrotra and Joel Khalili

Top Google Security Staff Warn Search Data Could Be Hacked if EU Rules Change
Europe’s pro-competition proposals could see Google Search and Android systems opened up. The company claims there are serious privacy flaws.
Matt Burgess

LastPass Users Had Their Data Stolen—Again
Plus: Former national security advisor John Bolton pleads guilty in classified-materials case, Microsoft helps take down major infostealer infrastructure, and more.
Lily Hay Newman

The Pentagon Is Looking Into the Dialog Data Exposure for Unmasking National Security Officials
Exposed records from the private group included the personal information of a senior White House intelligence official and an active-duty special operations officer.
Dell Cameron and Dhruv Mehrotra
Latest


Compromised
EU Politicians Investigated Pegasus Spyware. Then It Ended Up on One of Their Phones
Lily Hay Newman and Matt Burgess

Cheap Seats
Claude Helped a Hacker Find a Way to Issue Tickets to Almost Every US Music Festival
Andy Greenberg

Minority Report
British Police Built a Sprawling Crime-Prediction Machine. Some Results Couldn’t Be Trusted
Matt Burgess and Mark Wilding

Hack Job
Dialog Claims It Was Hacked. A Misconfigured Website Left Its Members Exposed
Dell Cameron and Dhruv Mehrotra

Patched Up
OpenAI Launches Full-Scale Effort to Patch Open-Source Bugs as It Takes on Anthropic’s Mythos
Lily Hay Newman

Key Components
A Critical Deadline Is Approaching for Windows and Linux Security
Dan Goodin, Ars Technica

Security Roundup
Hackers Claim to Leak Stolen Madison Square Garden Data
Matt Burgess and Lily Hay Newman

Grade Expectations
How the Peter Thiel-Linked Dialog Club Secretly Ranks Its Members
Dell Cameron, Dhruv Mehrotra, and Yulia Almazova


Check, Mate
The UK Will Scan Asylum-Seekers’ Faces for Age Checks—Despite Knowing the Tech Is Flawed
Matt Burgess, Maddy Varner, May Bulman, and Gabriel Geiger

Group Chat
Leak Exposes Members of Peter Thiel’s Secretive ‘Dialog’ Society
Dell Cameron and Yulia Almazova


Spec Ops
Meta Tapped a Pentagon Supplier to Prototype Face Recognition for Its Glasses
Dell Cameron and Dhruv Mehrotra




Encrypt Everything
Signal Alums Reveal ‘Encrypted Spaces,’ a System for Making Private Collaboration Apps
Andy Greenberg

Move Fast, Fix Things
CISA Tells US Agencies to Fix Security Bugs in as Little as 3 Days Thanks to AI Threats
Lily Hay Newman